• Register

Tomcat and Exchange on same server - 1 SSL Certificate

+1 vote
227 views
I've got a Windows SBS 2008 with Exchange and Tomcat installed. I made a CSR request using SBS Console and then installed the certificate issued by Godaddy. Outlook Web Access now works fine.

When I follow the steps to install the issued certificate on Tomcat however I get this error message:

"Public keys in reply and keystore don't match"

Do I have to make a CSR request with keytool for a certificate to work with Tomcat? Of course rekeying the certificate on Godaddy will invalidate the certificate I got for Exchange. Do I need to buy 2 separate certificates to make it work?

The certificate I have now is a multiple domain SSL with SANS.
asked Dec 10, 2012 in SSL Certificates by space360 (130 points)
    

1 Answer

0 votes

What happened is the request you sent to the CA (in this case godaddy) did not come from the certificate that you are trying to match up with the signed certificate that godaddy sent you.

 

The short answer to your question/dilema is to just create a new request using the keytool, for example:

 

keytool -certreq -alias mydomain -keystore keystore.jks -file mydomain.csr

 

Then you should send this request to godaddy for reprocessing. They should not charge you again, as I believe it's their policy to do reissues free of charge. If both domains are on the same multidomain certificates, then you should not have to buy 2 seperate certs.

answered Dec 11, 2012 by Leo Grove (1,890 points)

Related questions

0 votes
1 answer 1,761 views
1,761 views asked Jul 26, 2012 in SSL Certificates by anonymous
0 votes
1 answer 2,309 views
0 votes
1 answer 6,542 views
...